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[57] 



ABSTRACT 



An information accessing method permits the user data 
belonging to a client -server system to be accessed by a user 
belonging to another client -server system under proper 
security and controls the permission for accessing the user 
data according to the security ranks of the user whose data 
is to be accessed and the user who wants to access the data. 
When a client unit issues a request for accessing the user 
data of the user belonging to the other client-server system, 
the request for access is sent to an ID conversion unit 
through a user ID management unit. The ID conversion unit 
operates to convert a user ID into a guest ID by referring to 
an ID conversion table, and then sends the request for access 
to a user ID management unit. The user ID management unit 
makes sure thai the guest ID is registered by referring to the 
user ID table. Then, the request for access is sent to the user 
data management unit through security check units, so that 
the whole or the open portion of the user data specified on 
the user data is allowed to be accessed. 

5 Claims, 5 Drawing Sheets 
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METHOD FOR ACCESSING INFORMATION It is another object of the present invention to provide an 

information accessing method that controls permission to 

BACKGROUND OF THE INVENTION access the user data according to the corresponding relation 

^ . . , c ' . of a security rank between a user whose data is to be 

The present invention relates to an information accessing ^ j « ..^^^ „,u« ij *u j * 

; - . . - . . 1 . . .5 accessed and a user who would access the user data, 

method for accessmg information held in a server unit . 

included in a client-server system, and more particularly to herem, the term system means a system having 

the information accessing method that is effective when a ^ ^""^"^ .^'"'"^S "^^ data for each user, registering as 

client unit located in a client-server system accesses infor- » jin ID of a user perrnitted to access the user data 

mation held in a server unit located in another client-server ,„ '"^ specifymg the range of the registered user ID as the 

system through a network having two or more client-server ra«nagmg range of the system itself. The present invention 

systems connected therein. ^ characterized to offer a security method that is arranged to 

... . . ■ L ij • J oi convert a first user ID belongmg to the managing range of 

As a method for accessmg information held m a data file ^ ^ j^,^ ^ 3^^^^ ( , ,d) belonging to 

to be Ughtly secured, a method has been proposed for ^ „j ^ ^^^^ ^ 

restricung access to such a data file with a user ID or a ,5 ,0 access the user data if the second user ID and a third user 

password. With this method, a client-serve, system takes the ^„ ^^j^ ^^j^ ^^ ^^^^ ^.^^ 

steps of registering in a server unit a user ID or a password , , ■ ^ . , , 

with which access is permitted in a client-server system , 1'"^'^"' mfiarmation accessing method according to 

having the server unit, comparing a user ID or a password P.«=»=°', "i^cntion is configured to set one of plural 

which the user inputs with the user ID or the password 2a secu^'V ""ks 'o each user, set a table for determining if the 

registered in the client-server system, and permitting access "«= "^^^ ^""^ permitted from a security rank of 

to a data file contained in the server miit only it both of the » "f ^ requesting the access to the user data and a security 

user ID and the password are matched to each other. If a user "'^ « Z I ™" "^'i*""^ 

or a user group of specific users belonging to a section of a determme if the acce^ to the user data is permitted by 

company makes access to a data file, some access levels are 25 refe^ncmg this table if requested to access the user data, 

set according to the position of each user in the company When the user with the first user ID logs in the first system 

Each access level may reach the corresponding portion of or issues a request for access to the user data, the first user 

the data file to be accessed. Those access levels are used for ID is checked by the first system. When the user with the 

access restriction such as disability to access the data file, ^fst user ID issues a request for accessing the user data of 

ability only to access a data file, and ability to update a data 30 * ^^ond system, it is checked if the first user ID is registered 

j][e in the ID conversion table. When the request for access is 

When a data file registered in a chent-scrvcr system is f^'^ .^^ second system, it is checked if a second user 

accessed by a client unit of another client-server system in registered m the D conversion table. That is, three 

a network such as a communication tool having two or more ''^"^ are executed until the user of one system is permitted 

client-server systems connected therethrough, the client unit 35 Ihedataof the user belonging to the other system, 

pre-registers a guide ID in the client-server system having these checks are done, the user with the first ID enables 

the data file to be accessed so that the client unit may access !? '"i^*^ the whole user data managed by the second system, 

the data file in the client-server system that is different from ^""^er. the use of the security rank makes it possible to 

the system to which the client unit belongs. deiermme if the access to at least part of the user data is 

permitted on the basis of the security rank of the user for 

SUMMARY OF THE INVENTION issuing a request for access and the security rank of the user 

whose data is to be accessed. 

If the foregoing client-server system is applied to a system 

for managing a schedule, the information to be secured is a BRIEF DESCRIPTION OF THE DRAWINGS 

schedule of each user. Pjq j ^ ^ j^j^j^ diagram showing an overall configura- 

For example, a person (host) who would hold a meeting lion of a system according to the present invention; 

needs to access a schedule on the meeting day of each 3 is a table showing a data format of an ID conver- 

meeting participant for the purpose of checking if each ^^^^^ according to an embodiment of the present 

participant s schedule is open. If, however, any one of the invention* 

particiants belongs to the management of a different client- cr, r^,^ J. ^ r c ... 

server system from the system of the host, in the current J^^- ^ ^^^^^ ^^^l^^^"? ^ data format of a user ID table 

state, the client-server system of the participant is configured according to an embodiment of the present invenUon; 

to unconditionally permit the host to access his or her FIG. 4 is a table showing a data format of a secuniy table 

schedule or prohibit the host to do so. 12 according to an embodiment of the present invention; 

The personal schedule contains one portion that is open to 55 FI^. 5 is a table showing a data format of user data 13 

any user of the client-server system (such as appointed day according to an embodiment of the present invention; and 

and hours) and another portion that is not open to all users FIG. 6 is a flowchart showing a flow of process located 

of the system (such as a destination of a business trip or a between the systems according to an embodiment of the 

dealer). The current system does not provide a capability of present invention, 

finely restricting the data to a portion to be accessed or to a 50 
portion that is not to be accessed according to the relation 
between the user to be accessed and the user who would 

access the data. The following description will be oriented to a schedule 

It is an object of the present invention to provide an management to which an embodiment of the present inven- 

in formation accessing method that permits a user of a 65 tion is applied with reference to the drawings, 

client- server system to access the user data of another FIG. 1 is a block diagram showing a basic system 

client-server system under proper security. arrangement for describing an embodiment of the present 



DESCRIPTION OF THE PREFERRED 
EMBODIMENT 
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invention. In the present invention, the term "client-server FIG. 2 shows an example of a data format of the ID 
system" means a system configured to connect at least one conversion table 440 that resides in the ID conversion table 
client unit (20) to at least one server unit (10) so that the registration unit 44 (or 84). The ID conversion table has a 
server unit of this system manages data (41) of the user who corresponding relation set between the user ID and the guest 
uses the client unit of this system. 5 ID. The user ID is a user identifier registered in the user ID 
FIG. 1 shows a system configuration having two such table registration unit 43 included in the client-server system 
client-server systems (100, 500) connected through a net- (for example, 100) to which the user belongs. The guest ID 
work 90. A numeral 10 denotes a server unit for managing is a user identifier registered as a user ID in the user ID table 
a schedule of a user. A numeral 20 denotes a personal registration unit 84 included in the other client-server system 
computer (PC) that is a client unit for accessing the server (for example, 500). If one client-server system includes as a 
unit 1 through a local area network 30 (LAN). In FIG. 1, one participant a user permitted to access the other client-server 
PC 20 is connected to the LAN 30. In praaice, two or more system, the guest ID is registered as a guest ID in the ID 
PCs may be connected to the LAN 30. A numeral 41 denotes conversion table included in the latter cUent-server system, 
a user data registration unit for registering a schedule of each client-server system does not include the user per- 
user. The schedule registered in the registration unit 41 mitted to access the other dient -server system, the pest ID 
comprises an open portion 411 and a closed portion 412, ^ registered in the ID conversion table of the latter 

both of which are shown in FIG. 5 and will be discussed r^T.l^'I'll'^^^L*'' '^'^P^'"''"" 
, , . 1 t ,T-. . t . . • or more users may use one cuest ID. 
below. A numeral 43 denotes a user ID tabic registration unit ^-t.-^ il i rj.r . r.i. 
c ... TT-k *u . • J . *L FIG. 3 shows an example of a data format of the user ID 
for registering a user ID that is permitted to access the user ^^^le 430 registered in the user ID table registration unit 43. 
data held in the chent-server system to which the user wi h ^^^^^ g registering the user(s) permitted to 
the user ID belongs. A numeral 42 denotes a secunty table ^^e user data registration unit 41. The table contains 
registration unit for registermg a secunty table for deter- (^e identifiers of the users belonging to the managing range 
mining if the closed portion 412 of the schedule of the target [^e schedule management system. Each entry is corn- 
user is to be accessed according to the security ranks of the posed of a user ID 431, a security rank 432 and attribute 
user who would like to access the data and the user to be 25 information 433 of a user. The security rank 432 indicates a 
accessed, which wiU be discussed in detail with reference to rank or a level of the security. In this example, the entry 
FIGS. 3 and 4. having the user ID 431 of "BOOl" and "B002" indicates the 

A numeral 44 denotes an ID conversion table registration registration of the guest ID as the user ID. 

unit for registering an ID conversion table for registering the FIG. 4 shows an example of a data formal of the security 

corresponding relation between the user ID and the guest ID 30 table 420 registered in the security table registration unit 42. 

(which belongs to another schedule managing system). A The security table 420 indicates an access right to the closed 

numeral 11 denotes a LAN control unit for controlling portion of the schedule for each security rank 432. An 

communication between the server 10 and the PC 20 alphabet on an abscissa axis indicates a security rank of a 

through the LAN 30. user whose data is to be accessed, while an alphabet on an 

A numeral 90 denotes a network such as a public line, a 35 ordinate axis indicates a security rank of a user who wants 

private line, or a trunk LAN connected to two schedule to access the user data. In the access right, a value of "1" 

management systems (100, 500). A numeral 16 denotes a indicates access enabled, while a value of "0" indicates 

gateway for controlling communication between the two access disabled. In this table, assuming that the lop rank is 

schedule managing systems through the network 90. A A and the rank goes down one by one from A to Z, this table 

numeral 12 denotes a user ID management unit that is 40 is an example of a common security management, in which 

operated to reference the user ID table registration unit 43 if (the security rank of the user who wants to access the 

for checking the user ID sent from the PC 20 and the guest data)l(the security rank of the user whose data is to be 

ID sent from the other schedule management system and to accessed), the user who wants to access the data is always 

obtain an address of the PC from the user ID. A numeral 13 permitted to access the data, while if not, he or she is not 

denotes a security check unit that determines if the access to 45 permitted to access the data. In practice, this data format 

the closed portion 412 of the schedule of the target user is does not need the table, because the access right can be 

permitted by referring to the security table registration unit obtained by comparing the security rank of both of the users 

42. A numeral 14 denotes a user data management unit that with each other. However, if the access right is obtained 

is operated to read schedule information of the user from the security ranks of the user who wants to access the 

requested by the PCs (20, 60) and send the data permitted as 50 data and the user whose data is to be accessed in a compli- 

a result of the determination of the security check unit 13 to cated manner, the security table 420 is necessary, 

the PC 20 or the other system 500 through the user ID FIG. 5 shows an example of a data format of the user data 

management unit 12 or the gateway 16. A numeral 15 410. The user data 410 stores the schedules of the users as 

denotes an ID conversion unit for convening the user ID into the user data of two or more users. The user ID 431 is an ID 

the guest ID by referring to the ID conversion table 44 in the 55 number indicating an owner of the user data to be accessed. 

ID conversion table registration unit. In the schedule information of each user, the open portion 

In FIG. 1, the network 90 is served to connect the 411 is a portion to be accessed by any user irrespective of the 

schedule management system (100) shown in the left hand access right. Concretely, the open portion 4U corresponds to 

side of the Figure with the other schedule management a day and a time portion of the schedule. In particular, the 

system (500) shown in the right hand side of the Figure, each 60 open portion 411 indicates to any user only a free time on the 

of which has the same functional configuration as the other. schedule of the user to be accessed. The closed portion 412 

The server unit 10 is an information processing apparatus indicates the data that is accessible only to the user who has 

such as a PC or a workstation. The user ID management unit an access right, and contains private information or infor- 

12, the security check unit 13, the user data management unit mation aboul a trade secret such as a destination of a 

14, the ID conversion unit 15 and the like are realized by 65 business trip or an important matter of business, 

executing a program stored in a storage unit (not shown) of Herein, the description will be oriented to the actual 

this information processing apparatus. procedure for accessing the schedule data. 
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At first, the description will be oriented to the procedure 
about how the user of the PC 20 that serves as a client unit 
of the client -server system 100 makes access to a schedule 
of the user registered in the system 100 itself. 

The user of the PC 20 (User ID: C003) issues a request for 
accessing the schedule data included in his or her own 
system to the LAN control unit 11 of the server unit 10 
through the LAN 30 by transmitting the data for specifying 
his or her own user ID and that of the user whose schedule 
data is to be accessed (such as an employee number, a name 
or a user ID). The user ID management unit 12 is operated 
to check if the received user ID is the data of the user 
managed by the client-server system to which the manage- 
ment unit 12 belongs by referring to the user ID management 
unit 12. In this ase, the user ID indicates a user registered in 
that client-server system. Hence, the security rank (B) for 
the user ID is read from the server unit, and the data for 
specifying the ID of the user who wants to access the data, 
the corresponding security rank and the user whose data is 
to be accessed are passed to the security check unit 13. Then, 
the security check unit 13 operates to determine if the access 
to the closed portion 412 of the requested schedule is 
permitted by referring to the security table registration unit 
42, and then passes the determined result to the user data 
management unit 14. The user data management unit 14 
operates to access the user data registration unit 41 for 
reading the schedule data requested to be accessed and for 
transmitting the permitted portion to the PC 20 through the 
user ID management unit 12, the LAN control unit 11, and 
the LAN 30. 

In turn, the description will be oriented to the procedure 
about how a user of one schedule management system issues 
a request for access to a user of the other schedule manage- 
ment system. 

FIG. 6 shows this procedure and a flow of process from 
when the PC (20) issues a request for accessing a schedule 
of another user to when the PC (20) obtains the requested 
schedule information. The PC (20) operates to issue to a 
server unit (10) a request for processing a schedule with a 
user ID for issuing a request and the other user ID to be 
accessed of the other system (step 31). The user ID man- 
agement unit 12 receives this request through the LAN 30 
and the LAN control unit 11 (step 32), and stores the 
correspondence between the requested user ID and the 
physical address of the PC 20. Next, the user ID manage- 
ment unit 12 operates to check the ID of the user for giving 
an accessing request by referring to the user ID table 430 
(step 33), and then passes the control to the ID conversion 
unit 15 if the user whose data is to be accessed belongs to 
a different system from the system of the user who wants to 
access the data. The ID conversion unit 15 operates to 
convert the user ID into the guest ID by referring to the ID 
conversion table (44 D) (step 34), and transfers a request for 
access to the server unit 50 of the different client-server 
system 500 through the gateway 16 and the network 90 (step 
35). If the user ID is not registered in the ID regis U-ation 
table 44D, the ID conversion unit 15 rejects the request for 
access. The request for access contains a guest ID, a user ID 
and a user whose data is ID of a user to be accessed. The user 
ID management unit 52 of the server unit 50 receives the 
request for access (step 36) and checks if the guest ID and 
the user whose data is ID 431 of the user to be accessed are 
registered in a user ID table registration unit 83 (step 37). If 
both of the IDs are not registered in the unit 83, the user ID 
management unit 52 rejects the request for access through 
the gateway 56. If both of the IDs are registered in the 
registration unit 83, the user ID of the user for giving a 
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request for access, its security rank 432, the user ID of the 
user whose data is to be accessed, and its security rank 432 
are passed to the security check unit 53. The security check 
unit 53 operates to obtain an access right for the user for 
giving a request for access by referring to the security table 
82 (step 38), and passes the user ID of the user for giving a 
request for access, the user ID of the user whose data is to 
be accessed and the access right to the user data management 
unit 54. The user data management unit 54 operates to 
retrieve the data stored in the user data registration unit 81, 
and reads the user data registered under the user ID 431 of 
the user to be accessed (step 39). If the access right is 
enabled, the overall schedule information is transferred to 
the server unit 10 through the gateway 56 and the network 
90, while if the access right is disabled, only the open 
portion 411 of the schedule information is transferred to the 
server unit 10 (steps 40 and 41). This schedule information 
contains the user IDs of the user for giving an access request 
and the user whose data is to be accessed. The user ID 
management unit 12 receives this schedule information (step 
42) and obtains a physical address of the PC 20 from the user 
ID of the user for giving an access request and transmits the 
schedule infonnation to the PC 20 which issues an access 
request through the LAN control unit 11 and the LAN 30 
(step 43). The PC 20 receives this schedule information (step 
44) and displays it on the display unit. 

In the foregoing embodiment, when the PC (20) makes 
access to the server unit, the user ID of the requester is sent 
with the information for specifying the user whose data is to 
be accessed (such as an employee number, a name and a user 
ID). Instead, the user ID of the requester may be sent alone 
to the server unit. Then, the state of the client -server system 
permitted to be accessed by the user ID is checked 
(Concretely, the indexes such as a name and an employee 
number about the user data permitted to be accessed are 
output to the client unit.) Next, the information for speci- 
fying the user whose data is to be accessed may be input to 
the server unit. 

Further, in the foregoing embodiment, the gateway (16, 
56) is provided inside of the server unit (10, 50). Instead, the 
gateway (16, 56) may be located independently of the server 
unit (10, 50). In place of the gateway (16, 56), another 
inter-network connecting unit such as a router may be 
selected according to the type of the network 90. Or, a 
simple communication control mechanism of the network 
may be utilized. 

Moreover, in the foregoing embodiment, the user ID of 
the requester is transferred from the server unit 10 to the 
server unit 50 and then returns to the server unit 10. This is 
an ID for taking correspondence with the PC 20. However, 
the user ID may be replaced with a transaction ID numbered 
by the user ID management unit 12. 

The content of the user data 431 is not limited to the 
information about the schedule of the user. It may be any 
data. The user data 431 is divided into the open portion 411 
and the closed portion 412. In practice, all of the user data 
431 may be the open portion. In this case, the security rank 
432, the security table 420 and the security check unit 13 are 
not necessary. On the contrary, all of the user data may be 
the closed portion. 

In the foregoing embodiment, one schedule management 
system is configured of just one server unit. Instead, the 
invention may employ a multi -server system and therefore 
be configured of two or more server units. The schedule 
management system configured as described above has two 
or more server units connected through one LAN, one of 
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which server units has a gateway and the others of which 
server units do not have gateways. The content of the user 
ID table 430 is the same in any server unit included in the 
system. Each server unit takes the responsibility of the 
corresponding user group. The flow of process of the multi- 5 
server type schedule management system is the same as the 
flow of process shown in FIG. 6 from the steps 31 to 36. At 
a step 37, it is checked if the guest ID and the user ID 431 
of the user whose data is to be accessed are registered by 
referring to the user ID table 430. If both of the IDs are lo 
registered, it is determined if the user ID of the user to be 
accessed belongs to the user group to be processed by the 
server unit. If the request for accessing the schedule may be 
processed by the server unit, the flow of process from the 
subsequent steps 38 to 44 is the same as the flow of process 15 
shown in FIG. 6. If the user ID of the user to be accessed 
belongs to a user group to be processed by another server 
unit included in the same information management system, 
the user ID and its security rank are sent lo that server 
through the LAN control unit and the LAN. Then, this server 20 
is operated to perform the process from the steps 38 to 40, 
and then sends the schedule information to the server. The 
server unit operates lo just relay the schedule information 
and then send it to the server unit through the gateway. The 
flow of process from the subsequent steps 42 lo 44 is the 25 
same as the flow of process shown in FIG. 6. As mentioned 
above, the multi -server type information management sys- 
tem enables lo distribute the user data 410 and the process- 
ing load to two or more server units. 

As set forth above, according to the present invention, the 
user who passes the checking gates of the user ID and the 
guest ID can make access to all the user data belonging to 
the other system. Further, the system provides a capability of 
fine controlling the access right to the closed portion of the 
user data according lo the security ranks of the user whose 
data is lo be accessed and the user for giving an access 
request. 

What is claimed is: 

1. A method for accessing information in an overall 
system having at least a first client-server system for first 
users and a second client-server system for second users 
connected through communication means, each of said 
client-server systems having at least one server unit and at 
least one client unit connected to said server unit, and said 
server unit holding information of said client unit, compris- *5 
ing the steps of: 
storing respective data of said first users in said first 

client-server system; 
storing respective data of said second users in said second 

client-server system; 
registering user IDs of said first users in said first client- 
server system so thai said first users make access, at 
least partially, to data stored in said first client-server 
system; 55 
registering user IDs of said second users in said second 
client-server system so that said second users make 
access, at least partially, to data stored in said second 
client-server system; 
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if one of said second users is permitted to make access, at 
least partially, to stored data of said first users, regis- 
tering a guest ID in said first client-server system, while 
registering, in said second client-server system, a cor- 
respondence relationship between said one of said 
second users and said guest ID; and 

when a request for access lo stored data of one of said first 
users is received by said second client-server system 
from said one of said second users, transferring said 
request from said second client-server system to said 
first client-server system together with said guest ID 
with which the stored data are accessed. 

2. An information accessing method as claimed in claim 
1, wherein said user data includes an open portion to which 
all users can make access and a closed portion to which not 
all users can make access. 

3. An information accessing method as claimed in claim 
1, wherein an index of user data permitted to be accessed by 
an input user ID is output to the client-server unit in which 
a user inputs said input user ID so that said user data is 
accessed by specifying a desired piece of said user data in 
said index. 

4. A method for accessing information as claimed in claim 
1. wherein said respective data of said first users and said 
respective data of said second users includes a portion that 
is open to every other user and a portion that is not open to 
every other user, and said non-open portion is permitted to 
be accessed by a specific user, 

5. A method for accessing information in an overall 
system having a plurality of clients and a plurality of servers, 
and said overall system being defined by at least a first 
domain for first users and a second domain for second users 
connected to one another through communication means, 
comprising the steps of: 

storing respective data of said first users in said firsl 
domain; 

storing respective data of said second users in said second 
domain; 

registering user IDs of said first users in said first domain 
so that said first users make access, at least partially, to 
data stored in said first domain; 

registering user IDs of said second users in said second 
domain so that said second users make access, at least 
partially, to data stored in said second domain; 

if one of said second users is permitted to make access, at 
least partially, to stored data of said first users, regis- 
tering a guest ID in said first domain, while registering, 
in said second domain, a correspondence relationship 
between said one of said second users and said guest 
ID; and 

when a request for access to stored data of one of said first 
users is received by said second domain from said one 
of said second users, transferring said request fi-om said 
second domain to said first domain together with said 
guest ID with which the stored data is accessed. 

* * * )it >it 
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